Security Affairs

FEBRUARY 7, 2022

An unnamed Chinese-language-speaking hacking group compromised systems at National Games of China in 2021. Researchers at cybersecurity firm Avast discovered that a Chinese-language-speaking threat actor has compromised systems at National Games of China in 2021. The event took place on September 15, 2021 in Shaanxi (China), it is a national version of the Olympics with only local athletes.

Cybersecurity 94

Cybersecurity Access Security IT 94

The Last Watchdog

FEBRUARY 7, 2022

When new vulnerabilities re announced or flaws are discovered in public or “off the shelf” applications, several things happen. News spreads of the risks while attackers and security professionals alike begin searching for potential attack targets for the purpose of exploiting or protecting them. Related: How GraphQLs expanded the attack surface. When Log4Shell first hit the street, we immediately saw attacks against almost every one of our customers.

Authentication 210

Authentication Communications Risk Security 210

Hunton Privacy

FEBRUARY 7, 2022

On January 24, 2022, a group of state attorneys general (Indiana, Texas, D.C. and Washington) (the “State AGs”) announced their commitment to ramp up enforcement work on “dark patterns” that are used to ascertain consumers’ location data. The State AGs created a plan to initiate lawsuits alleging that consumers of certain online services are falsely led to believe that they can prevent the collection of their location data by changing their account and device settings, when the online services d

Privacy 136

Privacy Access IT 136

Security Affairs

FEBRUARY 7, 2022

Microsoft temporarily disabled the ms-appinstaller protocol for MSIX because it was abused by malware, such as Emotet. Microsoft announced to have temporarily disabled the ms-appinstaller protocol for MSIX because it was abused by malware, such as Emotet. In December, Microsoft addressed a vulnerability, tracked as CVE-2021-43890 , in AppX installer that affects Microsoft Windows which is under active exploitation.

IT 98

IT Phishing Security Cybersecurity 98

Advertisement

Many organizations today are unlocking the power of their data by using graph databases to feed downstream analytics, enahance visualizations, and more. Yet, when different graph nodes represent the same entity, graphs get messy. Watch this essential video with Senzing CEO Jeff Jonas on how adding entity resolution to a graph database condenses network graphs to improve analytics and save your analysts time.

Analytics

Thales Cloud Protection & Licensing

FEBRUARY 7, 2022

You can now implement and maintain encryption with minimal impact. madhav. Tue, 02/08/2022 - 07:26. Technologies such as IoT, cloud, edge computing, and AI can drastically improve business service and operations. However, their integration raises challenges around security, privacy, and the reliability of the underlying infrastructure. This, in turn, requires the protection of a strong cybersecurity architecture.

Encryption 87

Encryption Archiving Compliance Metadata 87

Data Matters

FEBRUARY 7, 2022

This Sidley Practice Note highlights certain key disclosure considerations for preparing your annual report on Form 10-K for fiscal year 2021, including recent amendments to U.S. Securities and Exchange Commission (SEC) disclosure rules and other developments that impact 2021 Form 10-K filings, as well as certain significant disclosure trends and current areas of SEC staff focus for disclosures.

Compliance 78

Compliance Privacy Security Cybersecurity 78

Dark Reading

FEBRUARY 7, 2022

This pervasive vulnerability will require continued care and attention to fully remediate and detect permutations. Here are some ways to get started.

82

82

WIRED Threat Level

FEBRUARY 7, 2022

When UpdateAgent emerged in late 2020, it utilized basic infiltration techniques. Its developers have since expanded it in dangerous ways.

IT 85

IT Security 85

IG Guru

FEBRUARY 7, 2022

Check out their site here. The post Dublin Core Metadata Initiative offers Guidance and Best Practices on Metadata appeared first on IG GURU.

Metadata 79

Metadata Records Management Information governance Government 79

Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage

Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.

IT

Threatpost

FEBRUARY 7, 2022

However, groups are rebranding and recalibrating their profiles and tactics to respond to law enforcement and the security community's focus on stopping ransomware attacks.

Ransomware 69

Ransomware Security Cloud 69

Dark Reading

FEBRUARY 7, 2022

Now that attackers can bypass preventative controls, we need to find and stop the attackers when they're already inside.

Authentication 86

Authentication 86

Threatpost

FEBRUARY 7, 2022

The now-patched flaw that led to the ForcedEntry exploit of iPhones was exploited by both NSO Group and a different, newly detailed surveillance vendor.

Government 68

Government Privacy Security 68

Dark Reading

FEBRUARY 7, 2022

Take a proactive approach to client-side security: Why monitoring your JavaScript programming language is so important to your overall security posture.

Security 75

Security 75

Advertisement

Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.

Risk

Threatpost

FEBRUARY 7, 2022

Feb. 18 is the deadline to patch a bug that affects all unpatched versions of Windows 10 and requires zero user interaction to exploit.

Government 68

Government Security 68

Dark Reading

FEBRUARY 7, 2022

Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card.

81

81

Threatpost

FEBRUARY 7, 2022

Two powerful trojans with spyware and RAT capabilities are being delivered in side-by-side campaigns using a common infrastructure.

Security 67

Security 67

Dark Reading

FEBRUARY 7, 2022

Actinium/Gameredon's attacks are another reminder of why organizations need to pay additional scrutiny to systems in the region.

74

74

Advertisement

Apache Cassandra is an open-source distributed database that boasts an architecture that delivers high scalability, near 100% availability, and powerful read-and-write performance required for many data-heavy use cases. However, many developers and administrators who are new to this NoSQL database often encounter several challenges that can impact its performance.

Security

Threatpost

FEBRUARY 7, 2022

The 'smishing' group lives up to its name, expanding globally and adding image exfiltration to the Wroba RAT it uses to infect mobile victims.

IT 64

IT Privacy Security 64

CGI

FEBRUARY 7, 2022

In the last two years, the retail industry has focused on fulfillment and rightly so. Since the onset of the pandemic, retailers have needed to find innovative ways to deliver goods while keeping customers and employees safe. Now the focus will be on the quality of engagement with customers.

Retail 52

Retail Customer Experience 52

Privacy and Cybersecurity Law

FEBRUARY 7, 2022

On February 3, the Illinois Supreme Court held that the state’s Workers’ Compensation Act (WCA) does not preempt claims for statutory damages under the Illinois Biometric Information Privacy Act (BIPA), significantly limiting a key defense used by employers in BIPA litigation. Below we provide some background on the BIPA and WCA, and explain why this decision matters for organizations across the globe handling the biometric identifiers and information of Illinois residents.

Compliance 52

Compliance Sales Marketing Privacy 52

Jamf

FEBRUARY 7, 2022

Apple has been warning that the Python 2 binary will be removed. It’s a fact now. Read what to do next.

IT 59

IT 59

Advertisement

“Reimagined: Building Products with Generative AI” is an extensive guide for integrating generative AI into product strategy and careers featuring over 150 real-world examples, 30 case studies, and 20+ frameworks, and endorsed by over 20 leading AI and product executives, inventors, entrepreneurs, and researchers.

Dark Reading

FEBRUARY 7, 2022

Flash bulletin alert includes mitigation strategies for defending against the ransomware.

Ransomware 59

Ransomware 59

Krebs on Security

FEBRUARY 7, 2022

The Internal Revenue Service (IRS) said today it will be transitioning away from requiring biometric data from taxpayers who wish to access their records at the agency’s website. The reversal comes as privacy experts and lawmakers have been pushing the IRS and other federal agencies to find less intrusive methods for validating one’s identity with the U.S. government online.

Access 212

Access Authentication Insurance Personal data 212

Dark Reading

FEBRUARY 7, 2022

SecurityScorecard adds digital forensics and incident response to strengthen its products.

IT 56

IT 56

eSecurity Planet

FEBRUARY 7, 2022

The UK government recently started an open-source GitHub repository to help organizations scan networks for vulnerabilities. The idea behind the Scanning Made Easy project from the National Cyber Security Centre (NCSC) and its i100 industry partnership is to provide a collection of Nmap scripts to users, such as sysadmins, for detecting system vulnerabilities.

IT 111

IT Security Cybersecurity Government 111

Advertisement

If you’re considering migrating from DataStax Enterprise (DSE) to open source Apache Cassandra®, our comprehensive guide is tailored for architects, engineers, and IT directors. Whether you’re motivated by cost savings, avoiding vendor lock-in, or embracing the vibrant open-source community, Apache Cassandra offers robust value. Transition seamlessly to Instaclustr Managed Cassandra with our expert insights, ensuring zero downtime during migration.

IT

eDiscovery Daily

FEBRUARY 7, 2022

Did you know in 2020 alone, the average person created 1.7 MB of data every second? ( source ). Now consider this in the context of your latest eDiscovery case: from cell phone forensics to computer user activity, the amount of digital documents to review is massive. For example, here’s a glimpse of the daily counts of electronically stored information (ESI) including traditional and modern data types: 4 billion emails (source). 7 billion text messages ( source ). 100 billion WhatsApp m

Computer and Electronics 41

Computer and Electronics Communications Libraries IT 41

Security Affairs

FEBRUARY 7, 2022

The Federal Communications Commission (FCC) says that small telecom providers have requested $5.6 billion to replace Chinese gear. The U.S. government has requested telecom providers to replace Chinese equipment in their networks due to security issues and allocated $1.9 billion to support the companies in the transaction. The Federal Communications Commission (FCC) said that the amount of money is not enough and that small telecom providers have requested $5.6 billion to replace Chinese gear.

Communications 90

Communications Government Security Information Security 90